Intrigue Research

Welcome! If you've landed here, you may been sent from an Intrigue.io collection engine. This page is intended to provide transparency into our research process.

If you’ve got a question that you don’t see listed here, please feel free to reach out, hello@intrigue.io, we’d be glad to help.

Start Free Trial

Research Transparency Questions

What kind of data collection do you perform?

Collection engines perform a variety of data-gathering tasks , all intended to find unknown assets and lightly gather enough information to determine security-posture for these assets.

The gathered information analyzed by our research team. and proactively published to the owners of this information. No collection task performed requires authorized access. It is intentionally designed to be "light." 

While you may have seen some alerts from your IDS or WAF, these are benign flags, and are not indicative of malicious behavior.

Can I see the results?

Absolutely. Simply create an account and log into Intrigue.io with your corporate email address to see results for your organization.

How can I learn more?

The Intrigue engine core is open source, you can find the details at core.intrigue.io. The specific tasks performed on a given organization will vary, but you find can the source code for them on Github.

For more information about Internet wide scanning research, see Rapid7's post on the matter.

Getting in Touch

Feel free to contact hello@intrigue.io regarding further questions. We also appreciate any community analysis results and hope for your collaboration.

Opt-out

In case you would like to be excluded from some or all of our probes please let us know at hello@intrigue.io - make sure to mention your CIDR blocks / list of IP addresses and affiliation.

Please note that as part of the opt-out process we attempt to verify that the requestor has been delegated or otherwise controls the network addresses in the opt-out request. We typically perform this verification via WHOIS and other tools. If we cannot verify delegation or ownership we are unlikely to opt-out the requested addresses. Similarly if the WHOIS delegation changes we may also remove the opt-out. It can be requested again in the future.